Cyberwarfare: China-Linked UAT-7290 usually active in South Asia expands its espionage-focused intrusions into Southeastern Europe, targeting telecoms

submitted a week ago by

thehackernews.com/2026/01/china-linked-uat-7290…

TL;DR:
- China-linked threat actor UAT-7290 has been active since at least 2022 in South Asia but is now also active in Europe
- It is focusing on intrusions against critical infrastructure entities in Southeast Europe
- UAT-7290 shares tactical and infrastructure overlaps with China-linked adversaries known as Stone Panda and RedFoxtrot (aka Nomad Panda)

…

Here is the technical report by Cisco Talos

Web archive link

Hot Top New Old

A_norny_mousse@feddit.org

a week ago

Could somebody ELI5 what a UAT-7290 actually is?

TIA 🙏

Create post

Join

#eu #russia #election #microsoft #estonia #lithuania #eupolitics #mega #opensource #disinformation #fascism #culture #georgescu #fediversepolitics #latvia #czechia #nato #games #eurovision2026 #covid #trump #lng #antivaxx #putin #gaza #digital sovereignty #fabrication #dependency #romania #trump invasion
Explore Tag Cloud

Europe

News and information from Europe 🇪🇺

(Current banner: La Mancha, Spain. Feel free to post submissions for banner images.)

Rules (2024-08-30)

This is an English-language community. Comments should be in English. Posts can link to non-English news sources when providing a full-text translation in the post description. Automated translations are fine, as long as they don’t overly distort the content.
No links to misinformation or commercial advertising. When you post outdated/historic articles, add the year of publication to the post title. Infographics must include a source and a year of creation; if possible, also provide a link to the source.
Be kind to each other, and argue in good faith. Don’t post direct insults nor disrespectful and condescending comments. Don’t troll nor incite hatred. Don’t look for novel argumentation strategies at Wikipedia’s List of fallacies.
No bigotry, sexism, racism, antisemitism, islamophobia, dehumanization of minorities, or glorification of National Socialism. We follow German law; don’t question the statehood of Israel.
Be the signal, not the noise: Strive to post insightful comments. Add “/s” when you’re being sarcastic (and don’t use it to break rule no. 3).
If you link to paywalled information, please provide also a link to a freely available archived version. Alternatively, try to find a different source.
Light-hearted content, memes, and posts about your European everyday belong in other communities.
Don’t evade bans. If we notice ban evasion, that will result in a permanent ban for all the accounts we can associate with you.
No posts linking to speculative reporting about ongoing events with unclear backgrounds. Please wait at least 12 hours. (E.g., do not post breathless reporting on an ongoing terror attack.)
Always provide context with posts: Don’t post uncontextualized images or videos, and don’t start discussions without giving some context first.

(This list may get expanded as necessary.)

Posts that link to the following sources will be removed

on any topic: Al Mayadeen, brusselssignal:eu, citjourno:com, europesays:com, Breitbart, Daily Caller, Fox, GB News, geo-trends:eu, news-pravda:com, OAN, RT, sociable:co, any AI slop sites (when in doubt please look for a credible imprint/about page), change:org (for privacy reasons)
on Middle-East topics: Al Jazeera
on Hungary: Euronews

Unless they’re the only sources, please also avoid The Sun, Daily Mail, any “thinktank” type organization, and non-Lemmy social media (incl. Substack). Don’t link to Twitter directly, instead use xcancel.com. For Reddit, use old:reddit:com

(Lists may get expanded as necessary.)

Ban lengths, etc.

We will use some leeway to decide whether to remove a comment.

If need be, there are also bans: 3 days for lighter offenses, 7 or 14 days for bigger offenses, and permanent bans for people who don’t show any willingness to participate productively. If we think the ban reason is obvious, we may not specifically write to you.

If you want to protest a removal or ban, feel free to write privately to the primary mod account @EuroMod@feddit.org

Modlog

Moderators

8.5k Subscribers 3 Local Subscribers

2.4k Posts 17.0k Comments

0 Daily Users 0 Weekly Users 0 Monthly Users 3 Users / 6 Months

Cyberwarfare: China-Linked UAT-7290 usually active in South Asia expands its espionage-focused intrusions into Southeastern Europe, targeting telecoms

Insert image

Voting Options

React with an emoji

Cyberwarfare: China-Linked UAT-7290 usually active in South Asia expands its espionage-focused intrusions into Southeastern Europe, targeting telecoms

1 Comments